Founded in 2002, Infinity Ward is the original studio behind the Call of Duty® franchise. The titles developed by Infinity Ward have won more than 200 "Game of the Year" awards and 100 "Editor's Choice" awards, among many other industry accolades. Some of our previous titles include: Call of Duty®: Ghosts, Call of Duty®: Infinite Warfare and most recently, Call of Duty®: Modern Warfare II. A critically acclaimed studio, Infinity Ward is proud to have one of the most passionate and talented development teams in the industry. We love to have as much fun as the games we create, and it shows in our relaxed, yet diligent, workplace environment. We believe that making the best games relies on having the best people, so we like to look after ours. We enjoy having fun with top-notch events that everyone gets involved with. Infinity Ward is wholly owned by Activision. To learn more about our studio, please visit us at infinityward.com , on Facebook at Facebook , and @InfinityWard on Twitter.
Expert Detection and Response Engineer
Location
United States
Posted
2 days ago
Salary
$124K - $229.4K / year
Seniority
Mid Level
Job Description
Expert Detection and Response Engineer
Activision Blizzard, Inc.
Role Description Activision is seeking an Expert Detection and Response Engineer to help protect our players, studios, platforms, and enterprise environments from advanced cyber threats. As part of our Global Security Operations organization, this role is responsible for actively identifying, investigating, and responding to security threats. This role is highly hands-on and focuses on real-world attacker behavior, rapid analysis, and effective containment. Responsibilities - Detect, investigate, and respond to security incidents across cloud, corporate, and production environments as a hands‑on member of the TDIR team. - Monitor and analyze security telemetry and audit logs to identify anomalous activity, unauthorized access, and emerging threats, including targeted attacks and advanced adversaries. - Perform alert triage, in‑depth investigation, and forensic analysis across the full incident lifecycle, from identification through containment, remediation, and post‑incident review. - Execute endpoint, identity, cloud, and malware investigations, including timeline reconstruction, indicator extraction, and root cause analysis. - Develop, refine, and tune threat detections within the SIEM based on real‑world attacker behavior and investigation findings. - Enhance investigation and response efficiency through automation, SOAR workflows, scripting, and advanced analytics. - Design, build, or operate AI/LLM-assisted triage and enrichment workflows (e.g., agentic pipelines integrated with case management platforms) to accelerate investigation and reduce analyst toil. - Evaluate and harden AI-assisted security tooling against adversarial input, including prompt injection and verdict-poisoning risks introduced via analyzed artifacts, applying schema-constrained or otherwise bounded output design rather than relying solely on input-side filtering. - Contribute to TDIR procedures, playbooks, runbooks, documentation, and operational metrics. - Collaborate closely with engineering teams, business stakeholders, and vendors during active investigations and response efforts. - Participate in an on‑call rotation and provide off‑hours support for critical incidents and material security events. - Communicate investigation findings clearly and effectively to technical teams and leadership. - Occasional travel (up to approximately 10%) may be required to support studios or on-site incident response. Qualifications - Bachelor’s degree in computer science, Information Security, or equivalent practical experience. - 10+ years of progressively accountable security experience, with a demonstrated track record of independent, expert-level judgment in incident response. - Hands‑on experience in threat detection, security operations, and incident response, with active involvement across the full incident lifecycle. - Strong understanding of the modern threat landscape, attacker tactics, techniques, and procedures. - Proven ability to detect, triage, investigate, and respond to security incidents in enterprise environments. - Experience performing detailed log analysis, correlation, and investigative triage. - Strong written and verbal communication skills, with the ability to clearly articulate incident findings and response actions. - Ability to work independently and collaboratively within the TDIR team and with technical and business stakeholders. - Willingness to participate in an on‑call rotation and provide off‑hours support for critical security incidents. - Hands-on experience with security monitoring platforms such as SIEM and EDR, including building or significantly extending detection content (not solely tuning existing rules). - Scripting or programming experience (e.g., Python, PowerShell, KQL) to support detection, investigation, or response automation. - Strong host- and network-based forensic skills, including timeline reconstruction and root cause analysis. - Working knowledge of how LLMs are applied to security operations (alert enrichment, auto-triage, summarization) and the failure modes specific to that application, such as hallucinated verdicts, injection via log or artifact content, and over-trust in model output. - Fluency in English. Preferred Qualifications - 12+ years of relevant IT and security experience, including prior leadership or mentorship of less-senior analysts. - Hands‑on malware analysis experience using static and dynamic techniques. - Experience implementing or operating SOAR platforms and security automation. - Hands-on experience building or integrating AI-assisted triage into a SOC workflow (SOAR, case management, or custom pipeline), including designing constrained output schemas or guardrails rather than relying solely on vendor-side content filtering. - Familiarity with emerging threat models for AI-augmented security tooling, such as prompt injection and verdict poisoning via analyzed artifacts. - Identity-focused detection experience, including Active Directory, hybrid identity, and privileged account monitoring. - Understanding foundational security best practices, including system and network hardening. - Ability to assess incidents quickly, recommend effective response actions, and mitigate operational and reputational risk. - Experience interfacing effectively with leadership, engineering teams, and external vendors. - Demonstrated engagement with the cybersecurity community or strong evidence of self‑driven learning and professional contribution. Benefits - Medical, dental, vision, health savings account or health reimbursement account, healthcare spending accounts, dependent care spending accounts, life and AD&D insurance, disability insurance. - 401(k) with Company match, tuition reimbursement, charitable donation matching. - Paid holidays and vacation, paid sick time, floating holidays, compassion and bereavement leaves, parental leave. - Mental health & wellbeing programs, fitness programs, free and discounted games, and a variety of other voluntary benefit programs like supplemental life & disability, legal service, ID protection, rental insurance, and others. - If the Company requires that you move geographic locations for the job, then you may also be eligible for relocation assistance.
Related Guides
Related Categories
Related Job Pages
More Engineer Jobs
Forward Deployed Engineer, Professional Services
CloudflareAt Cloudflare, we have our eyes set on an ambitious goal — to help build a better Internet.
About Us At Cloudflare, we are on a mission to help build a better Internet. Today the company runs one of the world's largest networks that powers millions of websites and other Internet properties for customers ranging from individual bloggers to SMBs to Fortune 500 companies. Cloudflare protects and accelerates any Internet application online without adding hardware, installing software, or changing a line of code. Internet properties powered by Cloudflare all have web traffic routed through its intelligent global network, which gets smarter with every request. As a result, they see significant improvement in performance and a decrease in spam and other attacks. Cloudflare was named to Entrepreneur Magazine's Top Company Cultures list and ranked among the World's Most Innovative Companies by Fast Company. At Cloudflare, we're not looking for people who wait for a polished roadmap; we're looking for the builders who see the cracks in the Internet that everyone else has simply learned to live with. We value candidates who have the instinct to spot a "normalized" problem and the AI-native curiosity to create a solution using the latest tools. Our culture is built on iteration, leveraging AI to ship faster today to make it better tomorrow, while ensuring that every improvement, no matter how small, is shared across the team to lift everyone up. If you're the type of person who values curiosity over bureaucracy, and that AI is a partner in solving tough problems to keep the Internet moving forward, you'll fit right in. Available Location: Singapore About the Role Cloudflare's Forward Deployed Engineer (FDE) program provides customers with a dedicated, hands-on technical expert embedded directly within their environment. This is not a traditional support or purely advisory engagement-it is a staff-augmentation model where you act as an extension of the customer's team, taking the lead in managing, optimizing, and evolving their Cloudflare solutions. As a Forward Deployed Engineer, you are a recognized subject-matter expert in your specialization and a trusted advisor to both the customer and Cloudflare leadership. You will own the most complex, high-stakes customer engagements, and contribute to the evolution of Cloudflare's service methodologies and offerings. You operate with a high degree of autonomy, make architectural decisions that impact mission-critical infrastructure, and partner with executive stakeholders to align technical outcomes with business objectives. This role is ideal for senior technologists who have a proven track record of owning end-to-end customer transformations, leading through influence, and scaling expertise across teams. What You Will Do Embed & Integrate - Become a trusted, embedded member of the customer's technical team, operating within their tools, processes, and change-management frameworks. - Follow the customer's change-management process for all hands-on modifications, ensuring risk mitigation and operational continuity. Hands-On Execution - Design, configure, and optimize Cloudflare solutions directly within the customer environment. - Implement changes, build prototypes, develop automation scripts, and troubleshoot issues in real time. Strategic Advisory & Architecture - Provide proactive architectural guidance, roadmap alignment, and best-practice recommendations. - Produce Solution Designs, HLDs, LLDs, databuilds, procedures, test plans, deployment plans, migration plans, as-builts, and other artifacts necessary for delivery and smooth handoff. Workshops & Knowledge Transfer - Lead technical workshops, knowledge-transfer sessions, and special-event preparation (e.g., product launches, traffic events, security drills, quarterly business reviews). - Ensure continuity by documenting decisions, runbooks, and configurations in the customer's collaborative workspace. Customer Advocacy & Liaison - Act as the voice of the customer within Cloudflare, surfacing product gaps, feature requests, and escalation items to Engineering, Support, and Product. - Partner closely with the Account Executive, Solutions Engineer, Customer Success Manager, Delivery Leaders and other stakeholders to align on account strategy and expansion opportunities. Experience & Skills Core Requirements 15+ years of experience in a customer-facing technical role. Recognized Expertise in one of the following focus areas with a proven track record of leading complex, enterprise-scale engagements: - Applications - Advanced tuning of WAF, Bot Management, API Gateway, DDoS protection, Rate Limiting, and performance optimization for global web properties. Experience designing security architectures for large-scale, multi-zone deployments. - Network - Hands-on management of Magic Transit, BYOIP, complex L3/L4 routing, DDoS resilience, and low-latency global connectivity design. Experience with network transformations and MPLS/SD-WAN migrations. - Zero Trust / SASE - Securing distributed workforces with Access, Gateway, CASB, RBI, and DLP. Proven experience implementing Zero Trust architectures at enterprise scale. - Leadership & Mentorship - Demonstrated experience mentoring junior team members, leading technical workshops, and contributing to the development of service methodologies, best practices, and reusable assets. - Strong Networking Foundation - Expert-level understanding of the OSI model, TCP/IP, TLS, DNS, and HTTP. - Hands-On Technical Skills - Demonstrated ability to implement, configure, and troubleshoot complex solutions. Experience with infrastructure-as-code tools (e.g., Terraform) and scripting (e.g., Python, JavaScript, Bash) is highly desirable. - Project & Program Management - Ability to manage multiple competing priorities, work to deadlines, and deliver results in ambiguous or fast-moving environments. Experience scoping and estimating complex engagements. - Communication & Executive Presence - Exceptional verbal and written communication skills. Ability to translate complex technical concepts for both technical and executive audience - Regional Experience - Experience working with enterprise customers in APJC, ideally within Korea. Understanding of regional compliance requirements, business culture, and technical ecosystems. Preferred Qualifications - Experience in heavily regulated industries (Public Sector, Financial Services, Healthcare) or complex legacy-migration environments. - Relevant industry certifications: CISSP, CCIE, AWS, GCP, Azure certifications, or equivalent. - Familiarity with Agile methodologies and enterprise change-management processes. - Prior experience with Cloudflare's product suite and edge-network ecosystem. What Makes Cloudflare Special? We're not just a highly ambitious, large-scale technology company. We're a highly ambitious, large-scale technology company with a soul. Fundamental to our mission to help build a better Internet is protecting the free and open Internet. Project Galileo: Since 2014, we've equipped more than 2,400 journalism and civil society organizations in 111 countries with powerful tools to defend themselves against attacks that would otherwise censor their work, technology already used by Cloudflare's enterprise customers--at no cost. Athenian Project: In 2017, we created the Athenian Project to ensure that state and local governments have the highest level of protection and reliability for free, so that their constituents have access to election information and voter registration. Since the project, we've provided services to more than 425 local government election websites in 33 states. 1.1.1.1: We released 1.1.1.1 to help fix the foundation of the Internet by building a faster, more secure and privacy-centric public DNS resolver. This is available publicly for everyone to use - it is the first consumer-focused service Cloudflare has ever released. Here's the deal - we don't store client IP addresses never, ever. We will continue to abide by our privacy commitment and ensure that no user data is sold to advertisers or used to target consumers. Sound like something you'd like to be a part of? We'd love to hear from you! Please note that applicants who progress to the offer stage of the interview process may be asked to attend an in-person interview within one of the Cloudflare Offices or Cloudflare Hubs. More details about this will be available at that stage of the interview process. This position may require access to information protected under U.S. export control laws, including the U.S. Export Administration Regulations. Please note that any offer of employment may be conditioned on your authorization to receive software or technology controlled under these U.S. export laws without sponsorship for an export license. Cloudflare is proud to be an equal opportunity employer. We are committed to providing equal employment opportunity for all people and place great value in both diversity and inclusiveness. All qualified applicants will be considered for employment without regard to their, or any other person's, perceived or actual race, color, religion, sex, gender, gender identity, gender expression, sexual orientation, national origin, ancestry, citizenship, age, physical or mental disability, medical condition, family care status, or any other basis protected by law. We are an AA/Veterans/Disabled Employer. Cloudflare provides reasonable accommodations to qualified individuals with disabilities. Please tell us if you require a reasonable accommodation to apply for a job. Examples of reasonable accommodations include, but are not limited to, changing the application process, providing documents in an alternate format, using a sign language interpreter, or using specialized equipment. If you require a reasonable accommodation to apply for a job, please contact us via e-mail at hr@cloudflare.com or via mail at 101 Townsend St. San Francisco, CA 94107.
• Leads the design and deployment of standardized OT solutions, including PLC, HMI, and SCADA systems, while supporting MES integration and plant-level data frameworks. • Participates in commissioning, cutover, and hypercare activities, and contributes to the development of global deployment playbooks. • Drives standardization and lifecycle management of industrial automation platforms (e.g., Siemens, Rockwell Automation, Schneider Electric), ensuring consistent configuration baselines and version control. • Supports structured patching and upgrade cycles while reducing technical debt across legacy plant environments. • Contributes to continuous improvement by providing technical input to product backlogs, identifying automation opportunities to enhance performance and reduce costs, and recommending architecture improvements based on plant feedback. • Also supports pilot initiatives under Transform funding, including areas such as predictive maintenance. • Focuses on improving reliability and resilience by implementing high-availability and failover designs for critical systems, and supporting backup and disaster recovery strategies for PLC configurations, SCADA servers, and historian systems. • Contributes to initiatives aimed at reducing mean time to repair (MTTR) and partners with Site Reliability Engineers to enhance observability and alerting capabilities. • Maintain continuous personal learning and development to remain technological relevancy in current and emerging technologies. • Perform other responsibilities as assigned by the Supervisor.
Databricks Engineer
QuantiphiPioneering AI-first solutions, solving complex business challenges through expertise, cloud, data engineering, and AI.
• Design, develop, and maintain scalable data pipelines using Databricks and Apache Spark. • Build and optimize ETL/ELT workflows to ingest, transform, and curate large datasets. • Implement data solutions following Medallion Architecture (Bronze, Silver, Gold). • Develop high-performance PySpark and Spark SQL transformations. • Optimize Delta Lake tables using partitioning, optimization, vacuuming, and time travel capabilities. • Orchestrate and monitor Databricks Workflows and scheduled jobs. • Collaborate with analytics, engineering, and product teams to deliver reliable data products. • Apply software engineering best practices, including version control, automated testing, and CI/CD. • Utilize AI-assisted development tools for code generation, debugging, documentation, and productivity while validating outputs to ensure quality and accuracy. • Contribute to data quality, performance tuning, and operational excellence across the platform.
Gateway Engineer
Makpar CorporationMakpar is an experienced solutions-oriented contractor focused on modernizing IT infrastructure. Minority + Woman Owned.
• Design, develop, validate, and maintain API gateway automation workflows. • Create configuration-as-code artifacts and developer portal integrations. • Build reusable onboarding patterns and API lifecycle capabilities. • Ensure gateway-side implementation components function effectively. • Hands-on engineering focused on API lifecycle modernization and developer self-service enablement.



